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1.What option of mount.cifs specifies the user that appears as the local owner of the 
files of a mounted CIFS share when the server does not provide ownership 
information? 

(Specify ONLY the option name without any values or parameters.) 
Solution: uid=arg 

Determine whether the given solution is correct? 

A. Correct 

B. Incorrect 

Answer: A 


2.Which of the following practices are important for the security of private keys? 
(Choose TWO correct answers.) 

A.Private keys should be created on the systems where they will pedibed and should 
never leave them. : Fi 

B.Private keys should be uploaded to public key servers. Kai 

C.Private keys should be included in X509 certificates. È 

D.Private keys should have a sufficient length for the ii used for key 
generation. 

E.Private keys should always be stored as plain afles without any encryption. 
Answer: C D Ki 


© 

3.What is the purpose of NSEC3 in DNSSEC? 

A.To provide information about eee ee key signing keys 

B.To prevent zone enumeration ~° 

C.To authenticate a DNS sery, 

D.To sign a DNS zone $ 

Answer: B Ra 

& 
Ss” 

4.Which commanel is used to run a new shell for a user changing the SELinux 

context? 

(Specify ONLY the command without any path or parameters.) 

Solution: newrole 

Determine whether the given solution is correct? 

A. Correct 

B. Incorrect 

Answer: A 


5.Which file is used to configure AIDE? 
A./etc/rkhunter.conf 


B./etc/audit/auditd.conf 
C./etc/aide/aide.conf 
D./etc/maldet.conf 
Answer:C 


6.Which of the following statements describes the purpose of ndpmon? 

A. It monitors the network for neighbor discovery messages from new IPv6 hosts and 
routers. 

B. It monitors remote hosts by periodically sending echo requests to them. 

C. It monitors the availability of a network link by querying network interfaces. 

D. It monitors the network for IPv4 nodes that have not yet migrated to IPv6. 

E. It monitors log files for failed login attempts in order to block traffic fm offending 
network nodes. [| 


SS 
Answer:A s? 


à 
7.What is an asymmetric key? Ka 

A. A key used for encryption and decryption that is the’Same 

B. A key used for encryption that is different from e key used for decryption 
C. A key used for decryption that is different frogs the key used for encryption 
D. A key used for both encryption and decrypfion that is generated in a pair 


Answer: D x 
we 


© 
D 
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8.Which of the following is an exapiple of a behavioral-based HID technique? 
A. Signature-based detection „sÝ 
B. Anomaly-based detections 
C. Heuristic-based detectién 
D. Rule-based detectigft 
Answer: B K 
e° 
9.Which command revokes ACL-based write access for groups and named users on 
the file afile? 
A. setfacl Cx group: * : rx, user:*: rx afile 
B. setfacl Cx mask: : rx afile 
C. setfacl ~m mask: : rx afile 
D. setfacl ~m group: * : rx, user :*: rx afile 
Answer: C 


10.Which command is used to set an extended attribute on a file in Linux? 


A. getfattr 
B. setfattr 
C. getfacl 
D. setfacl 
Answer: B 


11.Which option in an Apache HTTPD configuration file enables OCSP stapling? 
(Specify ONLY the option name without any values or parameters.) 

Solution: httpd-ssl.conf 

Determine whether the given solution is correct? 


A.Correct 
B.Incorrect © 
|Q 
Answer: B gS 
s 


12.Which of the following database names can be used wa a Name Service Switch 
(NSS) configuration file?(Choose THREE correct answe@) 
A. host 


4? 
B. shadow s 
C. service Ki 
D. passwd fia 
E. group S 
Answer: B D E K 
F 


13.Which of the following parapféters to openssl s_client specifies the host name to 
use for TLS Server Name Indication? 
A. -tlsname ge 
© 
B. -servername oye 
C. -sniname aS 
D. -vhost D 
E. -host 
Answer: B 


14.Which of the following lines in an OpenSSL configuration adds an X 509v3 Subject 
Alternative Name extension for the host names example.org and www.example.org to 
a certificate? 

A.subjectAltName = DNS: www.example.org, DNS:example.org 

B.extension= SAN: www.example.org, SAN:example.org 

C.subjectAltName: www.example.org, subjectAltName: example.org 

D.commonName = subjectAltName= www.example.org, subjectAltName = 


example.org 
E.subject= CN= www.example.org, CN=example.org 
Answer:A 


15.What is a buffer overflow? 

A. A type of virus 

B. A type of malware that disguises itself as legitimate software 
C. A type of denial-of-service attack 

D. A type of software vulnerability 

Answer: D 


16.Which tool can be used to manage the Linux Audit system? s< 
A. auditd x 
B. rkhunter eo 
C. chkrootkit 
D. maldet 
Answer: A 


o 
R 
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S 
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17.What is the difference between a SetUID gid SetGID bit? 
A. SetUID applies to files, while SetGID applies to directories 
B. SetUID allows a file to be executed the permissions of the file owner, while 
SetGID allows a file to be executed with the permissions of the group owner 
C. SetUID allows a user to changethe owner of a file, while SetGID allows a user to 
change the group owner of a fi 
D. There is no difference between SetUID and SetGID 
Answer: B «F 

S 
N 
% 

18.Which of the following expressions are valid AIDE rules? 
(Choose TWO €orrect answers.) 
A. '/var/run/.* 
B. append: /var/log/* 
C. /usr=all 
D. #/bin/ 
E. /etc p+i+u+g 
Answer: AE 


19.Which command included in the Linux Audit system provides searching and 
filtering of the audit log? 


(Specify ONLY the command without any path or parameters.) 
Solution: ausearch 

Determine whether the given solution is correct? 

A. Correct 

B. Incorrect 

Answer: A 


20.Which package management tools can be used to verify the integrity of installed 
files on a Linux system? 

A. RPM and DPKG 

B. APT and YUM 


C. dpkg and aptitude se 
D.yum and zypper 
Answer: A s 
xe 
Ka 
oO 
& 

21.What is a honeypot? < 


A. A type of virus ai 
B. A network security tool designed to lure attackę® into a trap 


C. A type of phishing scam Ki 

D. A type of denial-of-service attack Pg 

Answer: B Ñ 
B 


22.Which of the following is used perform DNSSEC validation on behalf of clients? 
A. Recursive name server Ki 
B. Authoritative name serves 
C. Secondary name server 
D. Primary name serve? 
Answer:A D 
e° 
23.Given a proper network and name resolution setup, which of the following 
commands establishes a trust between a FreelPA domain and an Active Directory 
domain? 
A. ipa trust-add --type ad addom --admin Administrator --password 
B. ipa-ad Cadd-trust --account ADDOM\Administrator--query-password 
C. net ad ipajoin addom CU Administrator -p 
D. trustmanager add C-domain ad: //addom --user Administrator Cw 
E. ipa ad join addom -U Administrator -w 
Answer: A 


24.Which of the following command lines sets the administrator password for ntop to 
testing 123? 

A. ntop --set-admin-password=testing123 

B. ntop --set-passwords=testing 123 

C. ntop --reset-passwords=testing123 

D. ntop --set-new-passwords=testing123 

Answer:A 


25.What is a symmetric key? 

A. A key used for encryption and decryption that is the same 

B. A key used for encryption that is different from the key used for decryption 
C. A key used for decryption that is different from the key used for anéryption 
D. A key used for both encryption and decryption that is generated randomly 


Answer: A eo 


o 
R 

26.What is privilege escalation? Ka 
A. An attack that targets a specific user or organization 
B. An attack that aims to steal sensitive information 
C. An attack that exploits a vulnerability to gaiñ elevated privileges 
D.An attack that floods a network or serveg'with traffic to make it unavailable 
Answer: C ee 

ge 
27.Which PAM module checks sfew passwords against dictionary words and enforces 
complexity? a 
(Specially the module naf only without any path.) 
Solution: pam_crackli® 
Determine whethergfie given solution is correct? 


A. Correct D 
B. Incorrect 
Answer: A 


28.What is the purpose of TSIG in DNS? 

A. To encrypt DNS queries 

B. To sign DNS messages for secure communication 
C. To provide information about DNS servers 

D. To map a domain name to an IP address 

Answer: B 


29.What is the purpose of IP sets? 

A. They group together IP addresses that are assigned to the same network 
interfaces. 

B. They group together IP addresses and networks that can be referenced by the 
network routing table. 

C. They group together IP addresses that can be referenced by netfilter rules. 

D. They group together IP and MAC addresses used by the neighbors on the local 
network. 

E. They group together IP addresses and user names that can be referenced from 
/etc/hosts.allow and /etc/hosts.deny 

Answer: C 


30.What is the purpose of an extended attribute in Linux? Ss 
A. To store additional metadata about a file eo 
B. To encrypt a file for secure transmission 
C. To compress a file to save disk space 
D. To mark a file as executable 

Answer: A 


Oo 
ge 


© 

31.Which file is used to configure rkhunteg? 

A. /etc/rkhunter.conf ee 

B. /etc/audit/auditd.conf o 

C. /etc/aide/aide.conf ve 

D. /etc/maldet.conf 

Answer: A < 
ge 

D 

32.What effect doegsthe following command have on TCP packets? 

iptables- A INPUPd 10.142.232.1 p tcp --dport 20:21 j ACCEPT 

A. Forward all ¥CP traffic not on port 20 or 21 to the IP address 10.142.232.1 

B. Drop all TCP traffic coming from 10.142.232.1 destined for port 20 or 21. 

C. Accept only TCP traffic from 10.142.232.1 destined for port 20 or 21. 

D. Accept all TCP traffic on port 20 and 21 for the IP address 10.142.232.1 

Answer: D 


33.Which of the following access control models is established by using SELinux? 
A. Security Access Control (SAC) 

B. Group Access Control (GAC) 

C. User Access Control (UAC) 


D. Discretionary Access Control (DAC) 
E. Mandatory Access Control (MAC) 
Answer: E 


34.Which option of the openvpn command should be used to ensure that ephemeral 
keys are not written to the swap space? 

A. --mlock 

B. --no-swap 

C. --root-swap 

D. --keys-no-swap 

Answer: A 


© 
& 
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35.Linux Extended File Attributes are organized in namespaces. hich of the 
following names correspond to existing attribute namespaces Choose THREE 
correct answers.) 
A. default 
B. system 
C. owner 
D. trusted Red 
9 
E. user 
Answer: BDE è 
N` 


Oo 
ge 


%, 
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36.Which of the following terms rar to existing scan techniques with nmap? 
(Choose TWO correct answers 

A. Xmas Scan <$ 

B. Zero Scan «< 
C. FIN Scan „© 
D. IP Scan i 
E. UDP SYN Scant 
Answer: A C 


37.Which command is used to view the access control list of a file? 
A. Is 

B. chmod 

C. getfacl 

D. setfacl 

Answer: C 


38.Which of the following commands adds a new user usera to FreelPA? 

A. useradd usera --directory ipa --gecos “User A” 

B. idap- useradd CH Idaps://ipa-server CN=UserA --attribs “Firstname: User: 
Lastname: A” 

C. ipa-admin create user --account usera C-fname User --iname A 

D. ipa user-add usera --first User --last A 

E. ipa-user- add usera --name “User A” 

Answer: D 


39.What is a man-in-the-middle attack? 
A. An attack that targets a specific user or organization 
B. An attack that aims to steal sensitive information K 
C. An attack that intercepts communications between two parties tasfeal information 
D. An attack that floods a network or server with traffic to make ițąfhavailable 
Answer: C K 
Cà 
R 
g“ 


40.Which of the following prefixes could be present gfe output of getcifsacl? 
(Choose THREE correct answers.) RY 

A. ACL oe 

B. GRANT Pi 

C. GROUP S 

D. OWNER K 

E. SID o 

Answer: A C E Ki 
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